Number of Chinese Devices in US Networks Growing Despite Bans
Keywords/Tags: ICS/OT, IoT Security, China Article Source: SecurityWeek An analysis by Forescout shows 300,000 Chinese devices in the US, up 40% compared to the previous year, despite bans. The post…
Critical Vulnerability Found in LayerSlider Plugin Installed on a Million WordPress Sites
Keywords/Tags: Vulnerabilities, vulnerability, WordPress Article Source: SecurityWeek A critical SQL injection vulnerability in the LayerSlider WordPress plugin allows attackers to extract sensitive information. The post Critical Vulnerability Found in LayerSlider…
Scathing Federal Report Rips Microsoft for Shoddy Security, Insincerity in Response to Chinese Hack
Keywords/Tags: Cloud Security, Data Breaches, Incident Response, Featured Article Source: SecurityWeek Cyber Safety Review Board, said “a cascade of errors” by Microsoft let state-backed Chinese cyber operators break into email…
Missouri County Hit by Ransomware
Keywords/Tags: Ransomware, ransomware Article Source: SecurityWeek Jackson County, Missouri, discloses ‘significant disruptions’ to IT systems, says ransomware attack likely at fault. The post Missouri County Hit by Ransomware appeared first…
XZ Utils Backdoor Attack Brings Another Similar Incident to Light
Keywords/Tags: Supply Chain Security, Supply Chain, XZ backdoor Article Source: SecurityWeek The discovery of the XZ Utils backdoor reminds an F-Droid developer of a similar incident that occurred a few…
Google Patches Chrome Flaw That Earned Hackers $42,500 at Pwn2Own
Keywords/Tags: Vulnerabilities, Chrome, Pwn2Own Article Source: SecurityWeek Google pushes a new Chrome update to patch another zero-day vulnerability demonstrated at a hacking contest. The post Google Patches Chrome Flaw That…
Google Patches Exploited Pixel Vulnerabilities
Keywords/Tags: Mobile & Wireless, Android, exploited, Featured, Pixel Article Source: SecurityWeek Google patches 28 vulnerabilities in Android and 25 bugs in Pixel devices, including two flaws exploited in the wild.…
Chrome to Fight Cookie Theft With Device Bound Session Credentials
Keywords/Tags: Data Protection, Chrome, cookies Article Source: SecurityWeek Google is bringing to Chrome new features to bind browser sessions to the device and protect users against cookie theft. The post…
Security Flaw in WP-Members Plugin Leads to Script Injection
Keywords/Tags: Application Security, Vulnerabilities, CVE-2024-1852, Wordfence, WordPress, WP-Members Article Source: SecurityWeek A cross-site scripting vulnerability in the WP-Members Membership plugin could allow attackers to inject scripts into user profile pages.…
Hotel Self Check-In Kiosks Exposed Room Access Codes
Keywords/Tags: IoT Security, Vulnerabilities, door hack, hotel Article Source: SecurityWeek Self check-in kiosks at Ibis Budget hotels were affected by a vulnerability that exposed keypad codes that could be used…